CNNVD-202601-2616 Information
Jan 15, 2026
cve
CNNVD ID
CNNVD-202601-2616
Related CVE
- CNNVD Published: 2026-01-15
Description (Chinese)
RIB Build Smart ERP是RIB公司的一个建筑行业的企业资源计划系统。 RIB Build Smart ERP 21.0817版本存在SQL注入漏洞,该漏洞源于对login validation端点中eidValue参数验证不足,可能导致SQL注入攻击。
Description (English)
RIB Build Smart ERP is an enterprise resource planning system for the construction industry of RIB. Version RB Build Smart ERP 21.0817 contains an injection loophole in SQL, which arises from inadequate verification of eidValue parameters at the endpoint of login validation, which may lead to an attack on SQL injection.
Hazard Level
Medium
Vulnerability Type
SQL注入
Affected Vendor
RIB
Published
2026-01-15
Last Modified
2026-02-24
References
https://ribccs.com/solutions/solution-buildsmart https://www.exploit-db.com/exploits/50445
Share on: